| 文件名 | 86Box.exe |
| 文件类型 |
PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
|
| 扫描器版本 | 1.0.222.174 |
| 数据库版本 | 2025-07-29 10:00:15 UTC |
我们的扫描器未检测到威胁
| 哈希类型 | 值 | 操作 |
|---|---|---|
| MD5 |
fa648deccc7e9d013d49ec760197f51b
|
|
| SHA1 |
fc4f71b87658751309552d947a7ed2737643b1df
|
|
| SHA256 |
dafd3fa12606dcbd23b72f9a9c9177a4be2a835dd17c74d9dceafedba9bb9ad5
|
|
| SHA512 |
91918486f394746f4a37f4309f28b3aecf47a069f802f6e571589801e609093abfab0c42035411c8bcfcf8f378c87e4f796b32e93df9cf9cd122b57a78e10323
|
|
| ImpHash |
6d3e413c2471a0c7d8769d121afb8557
|
| 图标 |
哈希: 1a413e39b9fca9e829de4c72d9198b06
模糊: 601af4a32ff93f84e0fdc71eb408bddb dHash: dcc6c2c2aa9c9ae2 |
| 映像基址 | 0x140000000 |
| 入口点 | 0x1400013e0 |
| 编译时间 | 2025-07-20 13:23:39 |
| 校验和 | 0x04025df7 (实际: 0x04025df7) |
| 操作系统版本 | 4.0 |
| PEiD 签名 |
PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
|
| 数字签名 | No valid SignedData structure was found. |
| 导入 | 27 库 |
| 导出 | 633 函数 |
| 资源 | 12 资源 |
| 节 | 14 节 |
| CompanyName | 86Box |
| FileDescription | 86Box |
| FileVersion | 5.0 |
| InternalName | 86Box |
| LegalCopyright | Copyright © 2007-2025 86Box contributors |
| OriginalFilename | 86Box.exe |
| ProductName | 86Box |
| ProductVersion | 5.0 |
| Translation | 0x0409 0x04b0 |
| 名称 | 虚拟地址 | 虚拟大小 | 原始大小 | 熵 | 特征 | MD5 |
|---|---|---|---|---|---|---|
.text |
0x00001000 |
37,344,736 bytes | 37,344,768 bytes | 6.46 (正常) |
IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ
|
D710BD7587567B9164FCDC78600C9A29 |
.data |
0x0239f000 |
405,536 bytes | 406,016 bytes | 2.05 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
10757AAF3C12C688A80E018BDE615D1D |
.rodata |
0x02403000 |
191,040 bytes | 191,488 bytes | 7.77 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
4177BE23F0679BFB9ABA312A40DD4924 |
.rdata |
0x02432000 |
26,026,680 bytes | 26,027,008 bytes | 6.17 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
DE031469F1662A2AEA71A49832262A04 |
/4 |
0x03d05000 |
448 bytes | 512 bytes | 4.86 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
3D18010FD1454BE3F91A118294C33645 |
/16 |
0x03d06000 |
241,664 bytes | 241,664 bytes | 7.98 (打包/加密) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
010F5C5A36CF903B15760661006DCC99 |
.pdata |
0x03d41000 |
1,094,916 bytes | 1,095,168 bytes | 7.01 (压缩) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
E40C0EA3610303B8ADA4A2C619788836 |
.xdata |
0x03e4d000 |
1,246,120 bytes | 1,246,208 bytes | 4.91 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
4C47ED0E72163230803958A48170A928 |
.bss |
0x03f7e000 |
86,457,096 bytes | 0 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_UNINITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
D41D8CD98F00B204E9800998ECF8427E |
.edata |
0x091f2000 |
20,245 bytes | 20,480 bytes | 6.03 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
14D0ED7CFD8DA80B07013DFFE64407B4 |
.idata |
0x091f7000 |
42,276 bytes | 42,496 bytes | 5.17 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
D4CA1B9FA0726B7109E509B32D6112C5 |
.tls |
0x09202000 |
16 bytes | 512 bytes | 0.00 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE
|
BF619EAC0CDF3F68D496EA9344137E8B |
.rsrc |
0x09203000 |
134,200 bytes | 134,656 bytes | 5.37 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ
|
58E8C9F0A6D064111CFDFEFD6E7BBE81 |
.reloc |
0x09224000 |
470,404 bytes | 470,528 bytes | 5.50 (正常) |
IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ
|
062D314848AB9C99FEBF88EA044D25FD |
2 检测到高熵(≥7.5)的节 - 可能存在打包/加密
1 检测到较高熵(≥6.5)的节 - 可能存在压缩
| 资源类型 | 数量 | 总大小 | 百分比 |
|---|---|---|---|
| RT_ICON | 9 | 129,576 字节 | |
| RT_GROUP_ICON | 1 | 132 字节 | |
| RT_VERSION | 1 | 668 字节 | |
| RT_MANIFEST | 1 | 1,862 字节 |
此文件未进行数字签名。
⚠ 此文件缺少数字签名或证书链无法验证。
执行来自未知来源的未签名文件时请谨慎。
No valid SignedData structure was found.
建议: 验证文件来源并确保它来自可信的发布者.
Gridinsoft Anti-Malware 拥有更强大的病毒扫描引擎。我们建议使用它来更准确地诊断受感染的系统。这个简短的指南将帮助您安装我们的旗舰产品以进行更准确的诊断:
下载反恶意软件此文件看起来是干净的,但定期的安全维护很重要
